Security Operation Center Engineer (Remote)

з/п не указана

Вакансия в архиве

Работодатель, вероятно, уже нашел нужного кандидата и больше не принимает отклики на эту вакансию

Показать описание вакансии

Требуемый опыт работы: 1–3 года

Полная занятость, удаленная работа

Security Operation Center Engineer/Analyst

Industry leader in online/mobile banking technology seeks information security professional responsible for AWS hosted (multi-tenant) infrastructure security monitoring.

This position is full-time remote.

Main responsibilities:

  • Perform continuous event monitoring in context of security incidents and provide appropriate reaction
  • Communicate with other teams (Tech Support, Dev teams) upon discovered security incidents
  • Be ready to prepare various high level reports related to different aspects of InfoSec awareness (current security incident reports, current vulnerability findings report)
  • Be involved in Vulnerability Management process: internal scan activities, periodic reports review, findings assessment, official vulnerability disclosures monitoring

Other responsibilities:

  • Assist in TLS certificate management
  • Be involved in risk management raised from infrastructure changes and enhancements
  • Assist in log aggregation and event correlation activities
  • Assist in other InfoSec-related activities:
    • Currently applied security controls effectiveness evaluation (firewall rules, user access permissions etc)
    • Current security controls enhancements and new related projects implementation
    • Internal workflows, procedures and instructions development

Main Requirements:

  • 1-2 yrs experience related to security monitoring (and/or security systems administration, InfoSec solutions implementation)
  • Familiar with Amazon Web Services
  • Familiar with general well known security guides, recommendations and compliance docs (e.g. ISO/IEC 27001-27002, PCI DSS, NIST guides/recommendations, CIS Benchmarks, SSAE16/SOC2, OWASP)
  • Familiar with general network and Web-services:
    • LDAP (MS AD)
    • Web publishing/proxying (IIS, NginX)
    • DNS, NTP
    • ssh
  • TCP/IP protocol stack knowledge
  • HTTP, SSL/TLS protocol knowledge, symmetric/asymmetric cryptoprotocols
  • Familiar with OpenVPN/IPSec
  • Familiar with OS-based security configuration aspects (MS Windows Server, CentOS)
  • Experience with common security tools:
    • Any Network scanners (nmap, OpenVAS, Nessus, Nexpose, Qualys etc)
    • Any LogAggregation/SIEM (ELK, AlienVault/OSSIM, splunk etc)
    • Any WAF (NAXSI, ModSecurity etc)
  • Familiar with InfoSec related community resources
    • IP reputation lists
    • IDS-IPS/AV signature lists
    • CVE MITRE, NIST NVD, OS/App security announcements
  • Ready to work with multi-national teams
  • Good written English (intermediate/upper-intermediate)
  • Good communication skills

Be a plus:

  • Experience with AWS security features:
    • ACL/SG
    • IAM
    • Amazon Inspector
    • GuardDuty
    • etc
  • Experience with ELK-stack (especially Kibana visualizations)
  • Familiar with configuration automation (Chef)
  • Familiar with git (GitLab, BitBucket)
  • Any security related certification (COMPTIA Security+, GIAC, AWS Certified Security, CCNA)

Ключевые навыки

ISO/IEC 17799Corporate SecurityModSecurityOpenVPN/IPSecAWS hosted

Вакансия опубликована 14 марта 2019 в Минске

Написать сопроводительное письмоПисьмо отправлено

Сопроводительное письмо к отклику

Похожие вакансии